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AMENDMENTS TO THE CLAIMS 

This listing of claims will replace all prior versions and listing of claims in the 
application. None of the claims has been amended. 

LISTING OF CLAIMS 

Claim 1 (Previously Presented) A second storage comprising: 

a plurality of nonvolatile data storing means; 
a controller of the nonvolatile data storing means; and 

an internal network for interconnecting the nonvolatile data storing means with the 
controller, 

wherein the controller includes a plurality of network transportation ports connected 
to different networks, respectively, an access controller for processing I/O commands 
requested for the transportation ports, and an access controlling table for storing access 
control setting information which defines the I/O commands that are to be authorized 
between each of the plurality of transportation ports and each of the plurality of nonvolatile 
data storing means. 

Claim 2 (Original) A second storage according to claim 1 , wherein the access 

controller judges authorization or rejection of the I/O commands requested for the 
transportation ports based on the access control setting information. 

Claims (Original) A second storage according to claim 1, wherein the access 

control setting information is set to the I/O commands to be authorized between a logical disk 
to be set to the plurality of nonvolatile data storing means and one of the plurality of 
transportation ports. 

Claim 4 (Original) A second storage according to claim 1, comprising a 
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management console for setting and changing the access control setting information. 

Claims (Original) A second storage according to claim 1, containing access 

control setting information which is set as readout unauthorized with respect to all the 
transportation ports. 

Claim 6 (Original) A second storage according to claim 3, wherein the access 

controller reports the I/O command judged as unauthorized to the management console. 

Claim 7 (Original) A second storage according to claim 5, wherein the 

management console comprises record means for recording the I/O conmiands reported from 
the access controller. 

Claim 8 (Previously Presented) An access controlling method of a second 

storage, comprising: 

a controller having a plurality of network ports connected to different networks, 
respectively, an access controller for processing I/O command requested for the network 
ports, and an access controlling table for storing access control setting information which 
defines the I/O commands to be authorized between one of the plurality of network ports and 
one of the plurality of nonvolatile data storing means; 

a plurality of nonvolatile data storing means; and 

an internal network for interconnecting the nonvolatile data storing means with the 
controller, wherein the access controller 

extracts an identifier of a data targeted by the I/O command fi-om the I/O command 
received at the network port, 

confirms a nonvolatile data storing means to which the data will be read or stored, and 
the network port that received the I/O command, 

refers to the access controlling table, and 

judges whether or not the I/O command is authorized between the network port and 



3 



Serial No. 10/084,910 

Response to Office Action mailed December 9, 2005 



H-1039 



the nonvolatile data storing means to which the data will be read or stored. 

Claim 9 (Previously Presented) An access controlling method according to claim 

8, wherein when a frequency of judgment that access non-authorization to specific data stored 
in the nonvolatile data storing means exceeds a predetermined threshold, access from the 
plurality of transportation ports to the data is not authorized. 

Claim 10 (Previously Presented) An access controlling method according to claim 

8, wherein when a frequency of judgment that access non-authorization to specific data stored 
in the nonvolatile data storing means exceeds a predetermined threshold, an administrator of 
the second storage is notified that the judgment frequency of the access non-authorization 
exceeds a predetermined threshold. 

Claim 1 1 (Previously Presented) An access controlling method according to claim 

8, wherein when a system of the I/O commands is the SCSI (Small Computer System 
Interface) standards, a "CHECK CONDITION" status is transmitted as a report of 
abnormalities. 

Claim 12 (Previously Presented) An access controlHng method according to claim 

1 1, wherein when a "REQUEST SENSE" request is issued after a host computer received the 
"CHECK CONDITION" status, a code denoting abnormalities is transmitted as a sense key 
and sense data in response thereto. 

Claim 13 (Previously Presented) An access controlling method according to claim 

12, wherein an "Illegal Request" is transmitted as the sense key. 

Claim 14 (Previously Presented) An access controlling method according to claim 

12, wherein "Data Protected" is transmitted as the sense key. 
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Claim 15 (Previously Presented) An access controlling method according to claim 

8, wherein when a system of the I/O commands is NFS (Network File System), a NFS error 
code "NFSERR PERM" is transmitted as a report of the access non-authorization. 

Claim 16 (Previously Presented) An access controlling method according to claim 

8, wherein when a system of the I/O commands is NFS (Network File System), a NFS error 
code "NFSERR_ACCS" is transmitted as a report of the access non-authorization. 

Claim 17 (Previously Presented) A second storage comprising: 

a plurality of nonvolatile data storing devices; 

a controller of the nonvolatile data storing devices connected to each of the data 
storing devices; 

said controller having a plurality of network transportation ports connected to 
different networks, respectively, an access controller for processing I/O commands of 
different types requested for the transportation ports, and an access controlling table for 
storing access control setting information for each of said network transportation ports that 
defines one of unauthorized access for the I/O commands or authorized access for at least one 
of the types of the I/O commands between each of the plurality of network transportation 
ports and each of the plurality of nonvolatile data storing devices, wherein said access 
controller judges the unauthorized access or the authorized access of the I/O commands 
requested for each of the transportation ports based on the access control setting information. 

Claim 18 (Previously Presented) A second storage according to claim 17, wherein the 
different types of I/O commands include READ and WRITE and the access control setting 
information includes READ only enable, WRITE only enable and recognition disabled for 
each of the network transportation ports. 

Claim 19 (Previously Presented) A second storage according to claim 17, further 
including a plurality of logical disks comprised of at least one of said data storing devices. 
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wherein said access control setting information defines said one of the unauthorized access 
for the I/O commands or authorized access for at least one of the types of the I/O commands 
between each of the plurality of transportation ports and each of the plurality of the logical 
disks. 

Claim 20 (Previously Presented) A second storage according to claim 17, further 
including a management console connected to said controller for setting and changing the 
access control setting information in the access controlling table for each of the network 
transportation ports. 
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